https://wiki.owasp.org/index.php?action=history&feed=atom&title=Netherlands_January_31%2C_2013Netherlands January 31, 2013 - Revision history2026-04-13T00:51:14ZRevision history for this page on the wikiMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=Netherlands_January_31,_2013&diff=151637&oldid=prevKnoblochmartin: nevigation added2013-05-15T12:34:55Z<p>nevigation added</p>
<table class="diff diff-contentalign-left" data-mw="interface">
<col class='diff-marker' />
<col class='diff-content' />
<col class='diff-marker' />
<col class='diff-content' />
<tr style='vertical-align: top;' lang='en'>
<td colspan='2' style="background-color: white; color:black; text-align: center;">← Older revision</td>
<td colspan='2' style="background-color: white; color:black; text-align: center;">Revision as of 12:34, 15 May 2013</td>
</tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l1" >Line 1:</td>
<td colspan="2" class="diff-lineno">Line 1:</td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;">;[[Netherlands | OWASP Netherland Wiki]] </ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;">;[[Netherlands_Previous_Events_2013 | All OWASP NL Events 2013]]</ins></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>= January 31, 2013 =</div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>= January 31, 2013 =</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>'''Broken Online Strong Authentication and OWASP update'''</div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>'''Broken Online Strong Authentication and OWASP update'''</div></td></tr>
</table>Knoblochmartinhttps://wiki.owasp.org/index.php?title=Netherlands_January_31,_2013&diff=148316&oldid=prevKnoblochmartin: Created page with "= January 31, 2013 = '''Broken Online Strong Authentication and OWASP update''' :This chaptermeeting will be about broken online strong authentication with banking web applica..."2013-03-21T17:17:40Z<p>Created page with "= January 31, 2013 = '''Broken Online Strong Authentication and OWASP update''' :This chaptermeeting will be about broken online strong authentication with banking web applica..."</p>
<p><b>New page</b></p><div>= January 31, 2013 =<br />
'''Broken Online Strong Authentication and OWASP update'''<br />
:This chaptermeeting will be about broken online strong authentication with banking web applications and OWASP updates. <br />
==Programme:==<br />
:18:30 - 19:00 Registration<br />
:19:00 - 19:45 The Truth about the e.dentifier2 - Erik Poll<br />
:19:45 - 20:00 Break<br />
:20:00 - 20:45 OWASP Update - Martin Knobloch<br />
:20:45 - 21:30 Networking<br />
==Presentations==<br />
===The Truth about the e.dentifier2===<br />
We present a security analysis of an internet banking system used by one of the bigger banks in the Netherlands, in which customers use a USB-connected device – a smartcard reader with a display and numeric keyboard – to authorise transactions with their bank card and PIN code. Such a set-up could provide a very strong defence against online attackers, notably Man-in-the-Browser attacks, where an attacker controls the browser and host PC. However, we show that the system we studied is flawed: an attacker who controls an infected host PC can get the smartcard to sign transactions that the user does not explicitly approve, which is precisely what the device is meant to prevent. <br />
===OWASP Update===<br />
News and updates on OWASP BeneLux 2013, OWASP Dutch Chapter meetings, AppSec EU 2013, OWASP Connector, the OWASP Newsletter and new OWASP initiatives.<br />
==Speakers==<br />
===Erik Poll===<br />
Erik works in the Digital Security group of the Radboud University on a range of topics in security, including smartcards, security protocols, software security, and critical infrastructures (esp. the smart grid).<br />
===Martin Knobloch===<br />
Martin Knobloch is member of the Dutch chapter board and chair of the Global Education Committee. Next to this he contributes to several projects as the OWASP Education Project and the OWASP Academy Portal.<br />
Martin is an independent security consultant and owner of PervaSec. His main working area is (software) security in general, from awareness to implementation. In his daily work, Martin is responsible for education in application security matters, advise and implementation of application security measures.</div>Knoblochmartin